Sign In

Communications of the ACM

ACM TechNews

Hackers Hide Cryptocurrency Mining Malware in Adobe Flash Updates

View as: Print Mobile App Share:
The malicious mining bot hides in a fake Adobe Flash updater.

Researchers at Palo Alto Networks have discovered a fake Adobe Flash updater that installs a malicious cryptocurrency mining bot.


Palo Alto Networks researchers have discovered a fake Flash updater that purports to install a legitimate Flash update, but actually installs a malicious cryptocurrency mining bot that mines the privacy coin Monero.

Because the program really installs a genuine Flash update, many users may be unaware their central processing unit could now by mining cryptocurrency for someone else.

When searching for fake Flash updates, the researchers found 113 instances of files with the "AdobeFlashPlayer" prefix hosted on non-Adobe servers.

The team suspects users are directed to these files via spoof URLs, but they have not been able to confidently conclude how victims arrive at the URLs in the first place.

Previous research suggests more than $250,000 of Monero is mined through illegitimate browser-based mining scripts every month.

From The Next Web
View Full Article


Abstracts Copyright © 2018 Information Inc., Bethesda, Maryland, USA


No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account